December 01, 2008

BizSmart News

Pacific Coast Information Systems Ltd. recently gave a presentation about web application security at the 1st Annual Critical Infrastructure Protection Conference on Cyber Security for Energy and Communications. The audience of business managers and industry executives seemed particularly interested in the practical steps they could take RIGHT NOW to improve security. Here are some of the ideas presented:

1. Educate your workforce. You invest in maintenance and upgrades for your technology but consider investing a corresponding amount in building security awareness through educating your staff. Train them in good practices for security. Security breaches often occur as a result of human error or oversight, but people can actually be your best defense.

2. Demand security from your business partners. Demand of your suppliers, distributors or outside consultants that they place the same level of due diligence that you place on security. In an increasingly connected symbiotic business network, their security holes could be your security risks. Promoting security within your business network adds partner value and protects your own business and the industry as a whole.

3. Take a comprehensive approach to security. There are multiple entry points for attacks. Understand the risks and the types of technology solutions available, including firewalls, virus scanners and web vulnerability assessments. Also, companies can impose many policies ranging from password management and visitor sign-ins to specifying which websites employees can browse. Reprinted with permission.